3 matches found
EV2GO ev2go.io
RISK EVALUATION Successful exploitation of these vulnerabilities could allow attackers to impersonate charging stations, hijack sessions, suppress or misroute legitimate traffic to cause large-scale denial of service, and manipulate data sent to the backend. 2. RECOMMENDED PRACTICES CISA...
CVE-2025-31486
Vite is a frontend tooling framework for javascript. The contents of arbitrary files can be returned to the browser. By adding ?.svg with ?.wasm?init or with sec-fetch-dest: script header, the server.fs.deny restriction was able to bypass. This bypass is only possible if the file is smaller than...
PT-2024-16667
Name of the Vulnerable Software and Affected Versions pam access affected versions not specified Red Hat Nan affected versions not specified Description A flaw was found in pam access, where certain rules in its configuration file are mistakenly treated as hostnames. This issue allows attackers t...